Technology list

In this list you will find all the cookies used on our Takeaway.com websites. These will be sorted by the
purposes mentioned in the cookie statement

Functional Technologies

We use different Technologies to ensure that our website functions well and is easy to use. The following
Technologies are used for functional purposes:

Functional technologies

Name supplier (name technology)

Purpose of technology

Shared with third parties

Lifetime of technology

Takeaway.com

PHPSESSID

SessionID of user, necessary for PHP and set by server.

Not shared with third parties.

Gets deleted after session

geolocator

lat lng detection.

Not shared with third parties.

Gets deleted after session

entrance

Load balancer cookie.

Not shared with third parties.

Gets deleted after 10 days.

iv

remember user credentials (iv + verify).

Not shared with third parties.

Gets deleted after 3 years 2 months and 3 days.

postcode

postcode entered by user.

Not shared with third parties.

Gets deleted after 3 years 2 months and 3 days.

privacybanner

Cookiestatement accepted or not (legacy).

Not shared with third parties.

Gets deleted after 1 year.

cookieConsent

Cookiestatement accepted or not.

Not shared with third parties.

Gets deleted after 3 months.

searchstring

searchstring entered by user, could also be a postcode.

Not shared with third parties.

Gets deleted after 1 year.

sortby

sort preference.

Not shared with third parties.

Gets deleted after session.

verify

remember user credentials (iv + verify).

Not shared with third parties.

Gets deleted after 3 years 2 months and 3 days.

UseLanguage

Language which is selected by user.

Not shared with third parties.

Gets deleted after 1 year.

devicebanner

show / hide appbanner for mobile devices.

Not shared with third parties.

Session based

lastChosenPaymentDetails

to pre-select payment method and bank choice which was last used by the customer.

Not shared with third parties.

Gets deleted after 3 months.

address_saved

to pre-select address for the location panel.

Not shared with third parties.

Gets deleted after 1 year.

address_geo

Store address geo location.

Not shared with third parties.

Gets deleted after session.

AID

For usage of back button on Menucard.

Not shared with third parties.

Gets deleted after session.

i18next

Used to detect browser language.

Not shared with third parties.

Gets deleted after session.

isLogged

Checking for user logged in or not.

Not shared with third parties.

Gets deleted after 3 years 2 months and 3 days.

latitude, longitude

Setting cookie for saving last search.

Not shared with third parties.

Gets deleted after session.

pickup

Updating pickup status.

Not shared with third parties.

Gets deleted after session.

preferredLanguage

Registering user prefered language.

Not shared with third parties.

Gets deleted after session.

S_*

Used to randomize the hero images, so they stay the same over the session.

Not shared with third parties.

Gets deleted after session.

searchstringmapper

Store location with lat/lng information for finding geo location.

Not shared with third parties.

Gets deleted after 60 seconds.

NID

This cookie is set using Google reCAPTCHA v3 to help protect the Takeaway Pay admin site from attacks
(by “bots” and other malicious software) and making sure users are not abusing it by trying to enter
wrong credentials many times.

The reCAPTCHA works by collecting hardware and software information and sending these data to Google
for analysis.

Lifetime: 6 months

activeAddress

Used to store extended information about currently selected customer address.

Not shared with third parties.

Lifetime: 4 years

jwt

Api access token

Not shared with third parties.

Lifetime: 2 months

refreshToken

Token to refresh the access token

Not shared with third parties.

Lifetime: 2 months

visitedUrls

Used by the application to see how many unique urls have been visited

Not shared with third parties.

Lifetime: session

BTV_{UniqueID}

used by the application to create an AB test

Not shared with third parties.

Lifetime: 4 months

cwOrderTrackingId

Used for order tracking deduplication

Not shared with third parties.

Gets deleted after session.

Tealium

Tealium_privacybanner

Cookiestatement accepted or not

Not shared with third parties.

Gets deleted after 1 year.

Utag_main

cookie set by Tealium to enable us to use their tag manager solution.The utag_main cookie is a 1st-party
cookie provided by Tealium. This cookie is used to record a timestamp of when you visit to our site has
started, the number of pages you have viewed, the number of visits you have had to our site and a unique
ID.This information is used within our analytics tools to enrich the data we’re collecting about your
visit on the website to help us understand our visitors usage of the site to provide a better user
experience.

Is shared with Tealium that only uses this for reporting to Takeaway.com.

Gets deleted after 1 year.

wamlastorder

Stores the decrypted orderID of the last transaction to prevent duplication tracking.

Not shared with third parties.

Gets deleted after 3 months.

Incapsula

visid_incap_*, nlbi_*, incap_ses_*

Incapsula DDoS Protection

Not shared with third parties.

Gets deleted after 12 months.

Analytical Technologies

We analyze your behavior on our website, using cookies and trackers, to improve our website and to adapt it to
your wishes. We hope that by analyzing this data our website is as user friendly as possible. The following
Technologies are used for analytical purposes:

Analytical Technologies

Name supplier (name technology)

Purpose of technology

Shared with third parties

Lifetime of technology

Takeaway.com

Takeaway.com ( __cfduid)

Measures the performance of the site.

Is shared with Cloudfare that only uses this for reporting to takeaway.com.

Gets deleted after 1 year.

Crazy Egg

Is_returning_ceir

To track whether a visitor has been on the website before.

Is shared with Crazy Egg that only uses this for reporting to takeaway.com.

Gets deleted after 5 years.

_ceg.s

Track visitor sessions.

Is shared with Crazy Egg that only uses this for reporting to takeaway.com.

Gets deleted after 3 months.

_ceg.u

Track visitor sessions.

Is shared with Crazy Egg that only uses this for reporting to takeaway.com.

Gets deleted after 3 months.

_CEFT

Store page variants assigned to visitors for A/B performance testing.

Is shared with Crazy Egg that only uses this for reporting to takeaway.com.

Gets deleted after 1 year.

Optimizely

OptimizelyBuckets

Store page variants assigned to visitors for A/B performance testing.

Is shared with Optimizely that only uses this for reporting to takeaway.com.

Gets deleted after 10 years.

OptimizelyEndUserID

Unique visitor identifier.

Is shared with Optimizely that only uses this for reporting to takeaway.com.

Gets deleted after 10 years.

OptimizelyGeographical

Stores information certain geographical areas or languages which are set in the visitors browsers.

Is shared with Optimizely that only uses this for reporting to takeaway.com.

Gets deleted after 10 years.

OptimizelySegments

Hold visitor's audience segmentation information.

Is shared with Optimizely that only uses this for reporting to takeaway.com.

Gets deleted after 10 years.

OptimizelyPendingLogEvents

Record visitor activity.

Is shared with Optimizely that only uses this for reporting to takeaway.com.

Gets deleted after 15 seconds.

Google Analytics

_ga, _ga_*

To differentiate between different user, unique visitor ID.

Is shared with Google Analytics that only uses this for reporting to Takeaway.com.

Gets deleted after 2 years.

_gcl_au

This cookie is used by Google Ads to attribute the conversion to the right ad click.

Data shared with Google.

Gets deleted after 3 months.

_gat

To Request rate throttling.

Is shared with Google Analytics that only uses this for reporting to Takeaway.com.

Gets deleted after 10 minutes.

_gid

To differentiate between different user, unique visitor ID.

Is shared with Google Analytics that only uses this for reporting to Takeaway.com.

Gets deleted after 2 years.

utma

To distinguish users and sessions.

Is shared with Google Analytics that only uses this for reporting to Takeaway.com.

Gets deleted after 2 years.

utmb

To determine new sessions/visits.

Is shared with Google Analytics that only uses this for reporting to Takeaway.com.

Gets deleted after 2 years.

utmc

Used in conjunction with utmb cookie to determine whether the user was in a new session/visit.

Is shared with Google Analytics that only uses this for reporting to Takeaway.com.

Gets deleted after 2 years.

utmv

To store visitor-level custom variable data.

Is shared with Google Analytics that only uses this for reporting to Takeaway.com.

Gets deleted after 2 years.

utmz

To store the traffic source or campaign that explains how the user reached the site.

Is shared with Google Analytics that only uses this for reporting to Takeaway.com.

Gets deleted after 2 years.

uid

This is an identifier for a user provided by the site (user-id)

Is shared with Google Analytics that only uses this for reporting to Takeaway.com.

Gets deleted after 60 days.

cid

This anonymously identifies a particular user, device or browser (clientid)

Is shared with Google Analytics that only uses this for reporting to Takeaway.com.

Gets deleted after 60 days.

New Relic

New Relic's platform measures and monitors the performance of their applications and infrastructure by collecting two main types of data: metric and event.

s shared with New Relic that only uses this for reporting to Takeaway.com. Data is aggregated and anonymous.

Hotjar

_hjClosedSurveyInvites

Ensures that the same invite does not re-appear if it has already been shown.

Is shared with Hotjar that only uses this for reporting to takeaway.com.

365 days

_hjDonePolls

Ensures that the same Poll does not re-appear if it has already been filled in.

Is shared with Hotjar that only uses this for reporting to takeaway.com.

365 days

_hjMinimizedPolls

Ensures that the widget stays minimized when the visitor navigates through the site.

Is shared with Hotjar that only uses this for reporting to takeaway.com.

365 days

_hjDoneTestersWidgets

Ensures that the same form does not re-appear if it has already been filled in.

Is shared with Hotjar that only uses this for reporting to takeaway.com.

365 days

_hjMinimizedTestersWidgets

Ensures that the widget stays minimized when the visitor navigates through the site.

Is shared with Hotjar that only uses this for reporting to takeaway.com.

365 days

_hjDoneSurveys

Used to only load the survey content if the visitor hasn't completed the survey yet.

Is shared with Hotjar that only uses this for reporting to takeaway.com.

365 days

_hjIncludedInSample

Let's Hotjar know whether a visitor is included in the sample which is used to generate Heatmaps, Funnels, Recordings, etc.

Is shared with Hotjar that only uses this for reporting to takeaway.com.

365 days

_hjShownFeedbackMessage

Ensures that the widget stays minimized when the visitor navigates through the site.

Is shared with Hotjar that only uses this for reporting to takeaway.com.

365 days

_hjid

This cookie is set to ensure that behavior in subsequent visits to the same site will be attributed to the same user ID.

Is shared with Hotjar that only uses this for reporting to takeaway.com.

Gets deleted after 1 year

Marketing Technologies

Obviously we hope that you use our website as often as possible and therefore we use cookies and trackers to advertise our website to you. The following Technologies are used for marketing purposes:

Marketing technologies

Name supplier (name technology)

Purpose of technology

Shared with third parties

Lifetime of technology

Takeaway.com

utm_source=an

Cookie gets placed when utm_source=an (Affilinet) appears in URL to recognize if a visitor is coming from related publisher sites and to activate the Affilinet pixel on the thank you page.

Not shared with third parties.

Gets deleted after 10 days.

realrefr

Cookie gets placed by Takeaway.com to track if visitors are coming from related publisher sites and reward them for this.

Not shared with third parties.

Gets deleted after 14 days.

refr=kliks

Cookie gets placed when refr=kliks appears in URL to recognize if a visitor is coming from related publisher sites and to activate the Daisycon pixel on the thank you page.

Not shared with third parties.

Gets deleted after 10 days.

Awin_cookie, zanpid & _aw_m_10510

Cookie gets placed when utm_source=awin appears in URL to recognize if a visitor is coming from related publisher sites and to activate the Awin pixel on the thank you page.

Not shared with third parties.

Gets deleted after 10 days.

aff_biscuit_cp

Cookie gets placed when visitor is hitting the credential page.

Not shared with third parties.

Gets deleted after 1 hour.

aff_biscuit_coup

Cookie gets placed when visitor is coming from a specific publisher site.

Not shared with third parties.

Gets deleted after 1 hour.

aff_dedup

Cookie gets placed when visitor is coming from a specific branding campaign.

Not shared with third parties.

Gets deleted after 10 days.

utm_source=be

Cookie gets placed when utm_source=be appears in URL to recognize if a visitor is coming from related publisher sites and to activate the Belboon pixel on the thank you page.

Not shared with third parties.

Gets deleted after 10 days.

Bing

Bing Ads, UET

Bing Ads helps us to provide directed advertising on the basis of your search history.

Data shared with Bing.

Gets deleted after 30 days.

MUID, MUIDB

This cookie is used to retarget website visitors via Bing.

Data shared with Bing.

1 year

Affilinet

Webmasterplan.com (affili_0, ASP.NET_Sessionid, affili_8047)

Cookie gets placed by Affilinet to track if visitors are coming from publisher sites and reward them for this.

Anonymized data is shared with Affilinet.

Gets deleted after 1 year.

Daisycon

Ds1.nl (cfduid, ci_1968, ci_76, dci, pdc)

Cookie gets placed by Daisycon to track if visitors are coming from publisher sites and reward them for this.

Anonymized data is shared with Daisycon.

Gets deleted after 1 year.

Awin

Zenaps.com & dwin1.com (aw12109, bld)

Cookie gets placed by Awin to track if visitors are coming from publisher sites and reward them for this.

Anonymized data is shared with Awin.

Gets deleted after 1 year.

Belboon

Belboon.de (belboon18146), Belboon.com (cfduid, ga)

Cookie gets placed by Belboon to track if visitors are coming from publisher sites and reward them for this.

Anonymized data is shared with Belboon.

Gets deleted after 1 year.

Google DoubleClick Floodlight

IDE, id,_drt_, __gads, test_cookie

For measuring conversions. This anonymous information will be used for determining value for the advertising partner and for calculating the costs for the advertising partner

Data shared with Google.

Gets deleted after 24 months.

doubleclick_net, test_cookie

For building up anonymous visitor segments

Data shared with Google.

Gets deleted after 24 months.

DSID

Used to check if the user's browser supports cookies.

Data shared with Google.

Gets deleted after session.

Google Adwords Conversion

NID

Used by Google to remember your preferences and other information, such as your preferred language,
how many search results you wish to have shown per page and whether or not you wish to have Google’s
SafeSearch filter turned on.

Data shared with Google.

Gets deleted after 30 days.

HSID

Used to authenticate users, prevent fraudulent use of login credentials, and protect user data
from unauthorized parties.

Data shared with Google.

Gets deleted after 30 days.

SSID

Used in combination with HSID to block attacks from unauthorized parties.

Data shared with Google.

Gets deleted after 30 days.

APISID

Used for advertisement campaigns.

Data shared with Google.

Gets deleted after 30 days.

SAPISID

Used for advertisement campaigns.

Data shared with Google.

Gets deleted after 30 days.

Facebook

sb

Identifies browser for login authentication purposes.

Data shared with Facebook.

Gets deleted after 680 days.

pl

Used to record that a device or browser logged in via Facebook platform.

Data shared with Facebook.

Gets deleted after 40 days.

wd

Measures the performance of the website.

Data shared with Facebook.

Gets deleted after session.

fr

Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers.

Data shared with Facebook.

Gets deleted after 90 days.

xs

Used in conjunction with the c_user cookie to authenticate your identity to Facebook

Data shared with Facebook.

Gets deleted after 90 days.

datr

Identifies browsers for purposes of security and site integrity, including for account recovery, and identification of potentially compromised accounts.

Data shared with Facebook.

Gets deleted after 680 days.

c_user

Used in conjunction with the xs cookie to authenticate your identity to Facebook

Data shared with Facebook.

Gets deleted after 90 days.

act

Analyses website behaviour.

Data shared with Facebook.

Gets deleted after session.

reg_fb_gate

Analyses website behaviour.

Data shared with Facebook.

Gets deleted after session.

reg_fb_ref

Analyses website behaviour.

Data shared with Facebook.

Gets deleted after session.

reg_ext_ref

Analyses website behaviour.

Data shared with Facebook.

Gets deleted after session.

_fbp

This cookie is used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers

Data shared with Facebook.

90 days

TradeDesk

TDID

Contains a unique randomly-generated value that enables the platform to distinguish browsers and devices.

yes

1 year

TDCPM

Contains data denoting whether a cookie ID is synced, enabling the data to be used outside the trading platform.

yes

1 year

JobBoost.io

jobboostio

To differentiate between different user, unique visitor ID.

Is shared with JobBoost.io that only uses this for reporting to Takeaway.com.